Optimized Web Services Security Performance with Differential Parsing

  • Masayoshi Teraguchi
  • Satoshi Makino
  • Ken Ueno
  • Hyen-Vui Chung
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4294)


The focus of this paper is to exploit a differential technique based on the similarities among the byte sequences of the processed SOAP messages in order to improve the performance of the XML processing in the Web Service Security (WS-Security) processing. The WS-Security standard is a comprehensive and complex specification, and requires extensive XML processing that is one of the biggest overheads in WS-Security processing. This paper represents a novel WS-Security processing architecture with differential parsing. The architecture divides the byte sequence of a SOAP message into the parts according to the XML syntax of the message and stores them in an automaton efficiently in order to skip unnecessary XML processing. The architecture also provides a complete WS-Security data model so that we can support practical and complex scenarios. A performance study shows that our new architecture can reduce memory usage and improve performance of the XML processing in the WS-Security processing when the asymmetric signature and encryption algorithms are used.


Web Services Web Services Security Performance XML parsing 


  1. 1.
    Simple Object Access Protocol (SOAP) Version 1.2,
  2. 2.
    Web Services Description Language (WSDL) 1.1,
  3. 3.
  4. 4.
  5. 5.
    XML-Signature XPath Filter 2.0,
  6. 6.
    Exclusive XML Canonicalization Version 1.0,
  7. 7.
    Liu, H., Pallickara, S., Fox, G.: Performance of Web Services Security, Technical Report (2004),
  8. 8.
    Takeuchi, Y., Okamoto, T., Yokoyama, K., Matsuda, S.: A Differential-analysis Approach for Improving SOAP Processing Performance. In: The 2005 IEEE International Conference on e-Technology, e-Commerce and e-Service (EEE 2005), pp. 472–479 (2005)Google Scholar
  9. 9.
    Abu-Ghazaleh, N., Lewis, M.J.: Differential Deserialization for Optimized SOAP Performance. In: SC 2005, pp. 21–31 (2005)Google Scholar
  10. 10.
    Makino, S., Tatsubori, M., Tamura, K., Nakamura, Y.: Improving WS-Security Performance with a Template-Based Approach. In: IEEE International Conference on Web Services (ICWS 2005), pp. 581–588 (2005)Google Scholar
  11. 11.
    Takase, T., Miyashita, H., Suzumura, T., Tatsubori, M.: An adaptive, fast, and safe XML parser based on byte sequences memorization. In: The 14th international conference on World Wide Web (WWW 2005), pp. 692–701 (2005)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Masayoshi Teraguchi
    • 1
  • Satoshi Makino
    • 1
  • Ken Ueno
    • 1
  • Hyen-Vui Chung
    • 2
  1. 1.Tokyo Research Laboratory, IBM ResearchKanagawa-kenJapan
  2. 2.IBM Software GroupAustinUSA

Personalised recommendations